• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Can tethering traffic be seen or filtered?

  • Thread starter Thread starter Member 2081181
  • Start date Start date
M

Member 2081181

Guest
I have switched on mobile hotspot (on a Android phone) which is used by my laptop.

I am using Netguard Firewall.
Netguard settings: All the apps including system apps are disabled (from using Wifi and Mobile data). I have turned on Subnet routing --> Allow tethering

Allow tethering has text which says "Depending on the Android version, tethering may work or may not work. Tethered traffic cannot be filtered"

Is there a way to see/filter the tethering traffic? (by any other app)

Also, can any of the apps which are disabled (from using Wifi and Mobile data) transmit data while tethering is on?
 
Hi svim,
I have already installed Glasswire. I can see data used by Tethering (upload and download). But I don't know whether apps disabled (from using Wifi and Mobile data) can transmit data via Tethering.

Of course, I can see the amount of data transferred in Glasswire while Tethering is on and make a guess whether other apps are using Tethering. But there is a chance that some app is transmitting data in bytes or kilobytes while Tethering is on (within the Tethering bar shown on Glasswire)

The goal is that I want to use mobile hotspot but don't want any other app to use data.
 
Not sure just what you're trying to monitor, apps will always continue getting their online connectivity through your phone's WiFi or mobile data whether tethering is enabled or not.
Or is this a situation where you're trying to recursively connect your phone to its own hotspot WiFi network? Tethering is typically used to provide other devices with online access, not the phone that's creating the hotspot.
 
svim said:
Not sure just what you're trying to monitor, apps will always continue getting their online connectivity through your phone's WiFi or mobile data whether tethering is enabled or not.
Click to expand...

Firewall can block apps from using data when wifi or mobile data is on but I am not sure whether any firewall can stop apps from using data while tethering is on.

If not then sadly one has to buy a USB/Wifi dongle (expensive) to provide internet connection.

svim said:
Or is this a situation where you're trying to recursively connect your phone to its own hotspot WiFi network? Tethering is typically used to provide other devices with online access, not the phone that's creating the hotspot.
Click to expand...

Mobile hotspot is used by my laptop for online access.
 
There are some fundamental basics that contrast with your assumption that apps on your phone will use your tethered hotspot for online access. A typical hardware firewall appliance will be monitoring both incoming and outgoing traffic, a firewall app on your phone will be primarily used to monitor only outgoing traffic, via either WiFi or mobile data. If your phone was rooted, using a root-only firewall app like AFWall+, would rely on iptables, the firewall service that's integral to the Linux kernel. Non-root firewall apps, like NetGuard, don't have access to iptables since it's a system-level service. Instead non-root firewall apps use a really clever workaround, an internal VPN service. This is not an external VPN service where you typically pay a fee for an account, this is just a VPN service that runs solely within your phone and is tied only to the firewall app. With no ability to use iptables, this is how a non-root firewall app filters outgoing traffic, whether its WiFi or mobile data.
Apps on your phone still rely on your phone's WiFi or mobile data, whether you have tethering enabled or not. If you do have it enabled, your phone's apps don't switch to that hotspot for their connectivity, they still just rely on your phone's already existing WiFi or mobile data. Other devices that connect to this tethered WiFi hotspot will be as this is their source for online access, but it is not some magically generated third source of online access that you're making it out to be. Tethering relies on your phone's mobile data for its online access, and outputs a WiFi signal for other devices to use, not your phone.
 
Thanks svim for the detailed explanation.

In conclusion, would you say whether there is any solution to my goal:
I want to use mobile hotspot but don't want any other app to use data (incoming or outgoing).

Whether using a root-only firewall app like AFWall+ could achieve this goal?
 
bnpd said:
Thanks svim for the detailed explanation.

In conclusion, would you say whether there is any solution to my goal:
I want to use mobile hotspot but don't want any other app to use data (incoming or outgoing).

Whether using a root-only firewall app like AFWall+ could achieve this goal?
Click to expand...
Maybe try Greenify.apk..?? You can set the apps to hibernate when not open and/or in direct use. Hibernation = No function or data usage. You can also go into Settings-Data-apps and disable background data for apps you're concerned about
 
bnpd said:
...
In conclusion, would you say whether there is any solution to my goal:
I want to use mobile hotspot but don't want any other app to use data (incoming or outgoing).

Whether using a root-only firewall app like AFWall+ could achieve this goal?
Click to expand...

So apparently your goal is to just have this particular phone provide a hotspot for your laptop to have WiFi connectivity, with any apps on the phone being cut off from any online access (WiFi or mobile data), yes?
For the most part you're already there by setting up a firewall app, a question being just how much more do you want to do for your phone to serve its purpose effectively (in this instance, just provide a WiFi signal). How much more do you want to tweak things? (...or in other words, is it actually going to make any difference optimizing the WiFi signal it's providing to your laptop).
One of the more invasive things to nullify would be Google apps and services, which depending on which phone model you have and which version of Android it's running could the next step to take or it could be a real hassle.
https://phandroid.com/2019/02/23/5-reasons-why-you-shouldnt-root-your-android-smartphone/
 
svim said:
One of the more invasive things to nullify would be Google apps and services, which depending on which phone model you have and which version of Android it's running could the next step to take or it could be a real hassle.
https://phandroid.com/2019/02/23/5-reasons-why-you-shouldnt-root-your-android-smartphone/
Click to expand...

Would you recommend rooting the phone for installing a custom ROM (as custom ROM can also be installed without rooting)?
1. Will there be any data sent to Google (via any hidden Google apps/services if I am not rooting)?
2. Will there be any data sent to the phone manufacturer company if I am not rooting (because there maybe terms and conditions/privacy policy of the phone manufacturer which I would/may have to accept while using the phone for the first time)?
[Note: I don't care about warranty void etc, privacy is the most important goal]
 
Whether you've rooted your device or not and/or use a custom ROM or not (flashing a stock ROM does not require rooting, flashing a custom ROM typically does require a rooted device as part of the process), it's not just Google's data mining you need to address. Your carrier will be tracking you through local cell tower connectivity and retaining records of your usage; there are countless apps from third-party developers that are data mining too (with some being explicit and up front about it, some being secretive and have been caught red-handed, and some that may or may not ever be revealed); and don't forget about the fun folk at various government agencies, like our NSA, that are collecting a massive amount of all citizen data. When you're focusing just on Google like the talking heads in the media often do, you're ignoring all the other players out there doing the same thing.
So basically, if privacy is the most important goal, there's a distinct contrast between 'privacy' and 'smartphone' and you need be very vigilant about maintaining a balance between the two. If you lock your smartphone down to a point where it's not sending/receiving any data, it's also matter where functionality and usability get nullified too.
-- Flashing a phone with its stock ROM does not require rooting but with most phones flashing a custom ROM does require it as part of the install process.
-- Whether the manufacturer, your carrier, or Google are aware of your phone being rooted or not isn't something they can prevent you from doing. Your phone is your property. A lot of people confuse things like Terms of Service agreements to be equal to violating some kind of municipal law but if you don't adhere to some point in the ToS it's not like they can actively have law enforcement take you away. A ToS is NOT a law, it is NOT something that you can be taken to a court of law over. So while they can't actively keep you from rooting your device, they can make things less convenient for you on their ends. OTA updates and OTA version upgrades are more problematic on rooted devices and need to be applied manually, also some apps, like Netflix, Pokemon Go, some financial services, have a mix of issues -- i.e. The Netflix app needs to be sideloaded as it won't install from the Play Store on a rooted device, although once installed it will function normally. Some banking apps just won't work on a rooted device. And in some cases you can use something like Magisk to allow an otherwise non-root-only app to run on a rooted device. But that mix of issues that depend on what device you have and what version of Android its running. YMMV.
https://www.xda-developers.com/how-to-use-magisk/
 
You must log in or register to reply here.
Back
Top Bottom